Getting Started

Contents

Introduction

Tranalyzer2 is a lightweight flow generator and packet analyzer designed for simplicity, performance and scalability. The program is written in C and built upon the libpcap library. It provides functionality to pre- and post-process IPv4/IPv6 data into flows and enables a trained user to see anomalies and network defects even in very large datasets. It supports analysis with special bit coded fields and generates statistics from key parameters of IPv4/IPv6 Tcpdump traces either being live-captured from an Ethernet interface or one or several pcap files. The quantity of binary and text based output of Tranalyzer2 depends on enabled modules, herein denoted as plugins Hence, users have the possibility to tailor the output according to their needs and developers can develop additional plugins independent of the functionality of other plugins.

Aliases

The file t2_aliases documented in $T2HOME/scripts/doc/scripts.pdf contains a set of aliases and functions to facilitate working with Tranalyzer. To install it, append the following code to ~/.bashrc or ~/.bash_aliases (make sure to replace $T2HOME with the actual path, e.g., $HOME/tranalyzer2-0.8.5):

Getting Started

For a full list of options, use Tranalyzer -h option: tranalyzer -h or refer to the complete documentation.

Getting Help

Documentation

Tranalyzer and every plugin come with their own documentation, which can be found in the doc subfolder. The complete documentation of Tranalyzer2 and all the locally available plugins can be generated by running make in $T2HOME/doc. The file t2_aliases provides the function t2doc to allow easy access to the different parts of the documentation from anywhere.

Man Page

If the man page was installed, then accessing the man page is as simple as calling man tranalyzer. If it was not installed, then the man page can be invoked by calling man $T2HOME/tranalyzer2/man/tranalyzer.1